General
-
Target
38104f28e6086af72e0150d4ed996e47_JaffaCakes118
-
Size
385KB
-
Sample
240330-kdjy1acd93
-
MD5
38104f28e6086af72e0150d4ed996e47
-
SHA1
aacc89221f6cf310a65bc6343d456027a84dbb1f
-
SHA256
cafeb5be4ac29b9ac7078e1aaa245510ddb734700d4a3b5e541805d99d5c8b84
-
SHA512
977d4685f7a5d7ccaef2222054ba609e5ede98885cdab7d575ab2b343cdf271688de29f90912cb2ddc8e59c35218a1ea04ad6e858cd4cb5682c256e4b6396200
-
SSDEEP
6144:da3Wm1h20hXD6Ry8I/+BFRXolcRGjmLwvtOt3nIbPsCT4ZHaBvPjg0h:daxhhhz6RUU7RGCLwVsnI3T4Buc0h
Static task
static1
Behavioral task
behavioral1
Sample
38104f28e6086af72e0150d4ed996e47_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
usamoney
45.142.215.47:27643
-
auth_value
9491a1c5e11eb6097e68a4fa8627fda8
Targets
-
-
Target
38104f28e6086af72e0150d4ed996e47_JaffaCakes118
-
Size
385KB
-
MD5
38104f28e6086af72e0150d4ed996e47
-
SHA1
aacc89221f6cf310a65bc6343d456027a84dbb1f
-
SHA256
cafeb5be4ac29b9ac7078e1aaa245510ddb734700d4a3b5e541805d99d5c8b84
-
SHA512
977d4685f7a5d7ccaef2222054ba609e5ede98885cdab7d575ab2b343cdf271688de29f90912cb2ddc8e59c35218a1ea04ad6e858cd4cb5682c256e4b6396200
-
SSDEEP
6144:da3Wm1h20hXD6Ry8I/+BFRXolcRGjmLwvtOt3nIbPsCT4ZHaBvPjg0h:daxhhhz6RUU7RGCLwVsnI3T4Buc0h
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-